c0569c416a6aa3a7d866da4ebe8b5be9

Sharing

Copy URL

Twitter E-mail

General

Target

c0569c416a6aa3a7d866da4ebe8b5be9
Size

80KB
MD5

c0569c416a6aa3a7d866da4ebe8b5be9
SHA1

a7b45d1e3c6d87b6b9d30f10a480582febbc770c
SHA256

3a100c08ed7ff6845632b9d34d522e90b23634723491410d45fbf564cfb911b9
SHA512

67d31fd06bd6a44232bed4090b5c8fcde7e01fbacdce5fd5e8de634bc36910a2aea32bd570f71b6c3aba9edc5ae841e6c4489c511f95a04a39f40127c82b16c4
SSDEEP

1536:7bMOUnQLoV5qXlX8jwV4m5c5jIY6P97vK+NV:+nQkVEp88V4Km8Y6P97vhr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c0569c416a6aa3a7d866da4ebe8b5be9

Files

c0569c416a6aa3a7d866da4ebe8b5be9
.exe windows:4 windows x86 arch:x86

5a260e3586c1eb3ca4a2cd2f46a54ace

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DragEnter
ImageList_GetIcon
ImageList_DragMove
ImageList_Read
ImageList_GetImageInfo
ImageList_BeginDrag
ImageList_DragLeave
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Replace
ImageList_Create
ImageList_Remove
ImageList_GetDragImage
ImageList_AddIcon
ImageList_Merge
ImageList_DragShowNolock

kernel32

DeleteFileW
GetStdHandle
CopyFileW
GetFileSize
GetLastError
SetLastError
OpenFile
CopyFileExA
GetCommandLineA
DeleteFileA
ReadFile
DeleteAtom
ReadConsoleA
GetCPInfo
Sleep
WriteFile
GlobalFree

advapi32

RegQueryValueExA
RegDeleteValueW
RegOpenKeyExW
RegCreateKeyW
RegQueryInfoKeyA
RegOpenKeyW
RegEnumKeyExA
RegOpenKeyExA
RegCreateKeyExA
RegFlushKey
RegDeleteKeyW
RegDeleteValueA
RegReplaceKeyW
RegLoadKeyA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueExW
RegGetKeySecurity
RegReplaceKeyA

gdi32

GetPixel
DeleteDC
GetBrushOrgEx
AddFontMemResourceEx
GetCurrentPositionEx
SetTextColor
AddFontResourceA
ClearBitmapAttributes
BeginPath
ClearBrushAttributes
AddFontResourceTracking
CancelDC
AddFontResourceExW
DeleteObject
CloseMetaFile
GetDCOrgEx
GetBitmapBits
AddFontResourceW
BitBlt

user32

DialogBoxParamW
CloseWindow
GetCursor
GetWindowTextA
CopyRect
LoadMenuA
CreateIcon
IsMenu
DrawIcon
AppendMenuW
GetMenu
GetWindowTextLengthA
CalcMenuBar
DrawIconEx
BlockInput
DrawTextW
InsertMenuA
DialogBoxParamA

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5a260e3586c1eb3ca4a2cd2f46a54ace

Headers

File Characteristics

Imports

comctl32

kernel32

advapi32

gdi32

user32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 60KB - Virtual size: 175KB

.reloc Size: - Virtual size: 60B

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 60KB - Virtual size: 175KB

.reloc
Size: - Virtual size: 60B

.rsrc
Size: 4KB - Virtual size: 2KB